Skip to content

handle token request cases for authorization_code and refresh_token differently #207

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
Potherca merged 26 commits into from
Jun 27, 2025
Merged

handle token request cases for authorization_code and refresh_token differently #207

Potherca merged 26 commits into from
Jun 27, 2025

Conversation

@ylebre
Copy link
Member

@ylebre ylebre commented Jun 23, 2025
edited
Loading

This PR is meant to fix #204

Work so far:

  • split up the handling for authorization_code and refresh_token, so that we don't have 500 error anymore. This requires an update on the php-solid-auth code as well to get the refresh token information.

The current result is that the 500 error is solved, but replaced with a 401 instead. This one is coming from deeper in the token handling.

@ylebre ylebre marked this pull request as draft June 23, 2025 14:19
@ylebre
Copy link
Member Author

ylebre commented Jun 23, 2025

The refresh token that is generated is actually an encoded json object, containing something like this:

{"client_id":"005c86034d936550c670c31da13fabcd","refresh_token_id":"09e9024478f33a713b707f198cacea66640df347a43f34ea1e42a30314c643f6b5cb31a91421bf43","access_token_id":"7556a6f81ab4e0d2fee33904804954459abf8ee6dc1aa20888adb6fdd0e92e8389a10d69c7aea166","scopes":["openid"],"user_id":"https:\\/\\/nextcloud.local\\/apps\\/solid\\/~alice\\/profile\\/card#me","expire_time":1753279371},

Potherca
Potherca reviewed Jun 23, 2025
View reviewed changes
@ylebre ylebre marked this pull request as ready for review June 25, 2025 20:44
@ylebre
Copy link
Member Author

ylebre commented Jun 25, 2025

Ok - it turned out the configuration passed to the oauth server was missing the client ID because it was in the POST instead of in the GET. After changing that around, it looks to be working now.

@ylebre ylebre changed the title WIP: handle token request cases for authorization_code and refresh_token dfferently handle token request cases for authorization_code and refresh_token differently Jun 25, 2025
@Potherca
Copy link
Member

Potherca commented Jun 26, 2025
edited
Loading

I've added the PHP Codesniffer config as discussed in the comments.

ylebre added 19 commits June 26, 2025 17:58
@ylebre
rename decrypt call
e6906c6
@ylebre
remove client_secret
e93cac6
@ylebre
straight from GET or POST
80ee0f9
@ylebre
remove elseif nag
487936c
@ylebre
fix indentation
490efe9
@ylebre
remove switch case property that is not working as intended
ae6bd93
@ylebre
exclude PSR2.ControlStructures.ControlStructureSpacing.SpacingAfterOp…
28384b5 
…enBrace
@ylebre
attempt to get the test suites to pass again
3ad37fa
@ylebre
first bits, try to register a user backend
8088220
@ylebre
move register step to constructor, it needs to be called before boot
becb437
@ylebre
implement all functions to get something to run
a9fdac7
@ylebre
only register for the token endpoint
e6568ff
@ylebre
token endpoint now uses the clientauth thing, so we can safely return…
c045b4d 
… client_secret
@ylebre
remove error_log and add HUGE warning sign
e93980a
@ylebre
add warning
6988778
@ylebre
remove error_log
4d96b15
@ylebre
whitespace
16f8048
@ylebre
Merge pull request #212 from pdsinterop/feature/user-backend
a48d395 
Feature/user backend
@ylebre
Merge branch 'main' into fix/refreshToken
db83408
@ylebre ylebre requested a review from Potherca June 27, 2025 15:10
@Potherca Potherca merged commit 4fc7618 into main Jun 27, 2025
66 of 72 checks passed
@Potherca Potherca deleted the fix/refreshToken branch June 27, 2025 15:14
@Potherca Potherca added this to the v0.11.0 milestone Oct 13, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Potherca Potherca Potherca approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

v0.11.0

Development

Successfully merging this pull request may close these issues.

refresh token request results in 500 Internal Server Error

3 participants

@ylebre @Potherca